Merge pull request #1 from FullStackS-GmbH/task/workflow

AndreasDeCrinis · web-flow · commit 9a9dd16dc048 · 2025-08-07T09:29:52.000+02:00
Task/workflow
diff --git a/.github/workflows/universal-airgapper.yml b/.github/workflows/universal-airgapper.yml
@@ -0,0 +1,66 @@
+name: Universal Airgapper
+
+on:
+  workflow_dispatch:
+    inputs:
+      job-name:
+        description: 'Job Name'
+        default: 'airgapper'
+        required: false
+      image_registry:
+        description: 'Registry of the image to use'
+        default: 'ghcr.io'
+        required: false
+      image_name:
+        description: 'Name of the image'
+        default: 'fullstacks-gmbh/universal-airgapper'
+        required: false
+      image_tag:
+        description: 'Tag of the image'
+        default: '0.0.10'
+        required: false
+      image_pull_policy:
+        description: 'Image pull policy'
+        default: 'always'
+        required: false
+      config-folder:
+        description: '--config-folder parameter; path to folder, containing config files'
+        default: '${{ github.workspace }}'
+        required: false
+      debug:
+        description: 'Enable debug mode'
+        default: ''
+        required: false
+      credentials-secret-name:
+        description: 'Name of the secret containing the credentials'
+        default: 'UNIVERSAL_AIRGAPPER_CREDS'
+        required: false
+
+jobs:
+  airgapper:
+    name: ${{ github.event.inputs.job-name || 'airgapper' }}
+    runs-on: ubuntu-latest
+    container:
+      image: ${{ github.event.inputs.image_registry || 'registry.lab.cloudstacks.eu' }}/${{ github.event.inputs.image_name || 'fullstacks-tools/universal-airgapper' }}:${{ github.event.inputs.image_tag || 'latest' }}
+      options: --pull=${{ github.event.inputs.image_pull_policy || 'always' }}
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Show config files
+        run: |
+          echo "========================================================"
+          echo "================ Universal Airgapper [ $APP_VERSION ] ============"
+          echo "================ Commit - $APP_COMMIT_SHA  ==================="
+          echo "====================== CONFIG =========================="
+          cat ${{ github.event.inputs.config-folder || github.workspace }}/*.yaml || true
+          echo "========================================================"
+
+      - name: Write credentials file
+        run: echo "${{ secrets[github.event.inputs.credentials-secret-name] }}" > credentials.yaml
+
+      - name: Run Universal Airgapper
+        run: |
+          python /home/airgapper/main.py \
+            --credentials-file "${{ github.event.inputs.credentials-file || secrets.UNIVERSAL_AIRGAPPER_CREDS }}" \
+            --config-folder "${{ github.event.inputs.config-folder || github.workspace }}" ${{ github.event.inputs.debug }}
